Description of the vulnerability

The QEMU product can emulate the audio device es1370 .

However, some memory areas are are not freed at software unplugging time.

An attacker, inside a guest system, can therefore create a memory leak in the ac97 audio device driver of QEMU, in order to trigger a denial of service against the host system.Complete Vigil@nce bulletin.... (Free trial)